Primary

Context

Tenable Network Monitor Local Privilege Escalation Vulnerability

Vulnerability

Patched

A local privilege escalation vulnerability has been identified in Tenable Network Monitor versions prior to 6.5.1 on Windows. The issue allows non-administrative users to stage files in a local directory, which can then be executed as arbitrary code with SYSTEM privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized access to SYSTEM privileges, allowing a user to execute code with elevated rights.

Remediation

Users can upgrade to Tenable Network Monitor version 6.5.1 to address this vulnerability. The installation files are available from the Tenable Downloads Portal.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tenable Network Monitor Local Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Tenable Network Monitor

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating